Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n9LoZrHrgid6tvVi_jLgg1mzAWU.cer
File: n9LoZrHrgid6tvVi_jLgg1mzAWU.cer (raw, json)
Hash identifier: 3fyruk1SecZk1VujlJHfK6ybdNxu5Z0qBdq7DNNP7sk=
Subject key identifier: 9F:D2:E8:66:B1:EB:82:27:7A:B6:F5:62:FE:32:E0:83:59:B3:01:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F947
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/n9LoZrHrgid6tvVi_jLgg1mzAWU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 14 Jun 2024 22:19:13 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 133365
AS: 141373
IP: 103.151.40.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129351 (0x1f947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 14 22:19:13 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91B7C0E/serialNumber=9FD2E866B1EB82277AB6F562FE32E08359B30165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ba:6f:07:2a:14:7c:40:b3:fc:25:a1:b7:5e:
1a:1b:90:ca:9c:ee:80:3f:b2:7c:e1:30:d9:04:13:
94:5d:19:e1:4f:14:48:e6:98:c5:a1:0f:43:5e:68:
80:54:04:ff:c3:6c:49:88:7f:f7:23:a9:ff:c4:1c:
1d:66:00:60:0d:35:a8:d9:ea:ef:69:38:d3:3a:05:
4b:78:28:63:8c:96:36:99:d6:3e:68:e5:d7:b2:26:
d1:f1:bc:83:2b:a1:89:61:57:75:ee:67:50:aa:a2:
62:d6:9e:6b:88:bb:64:a4:38:4d:c8:21:7f:6d:b2:
8c:1a:59:df:32:d1:59:b7:21:ec:f1:90:16:e0:60:
df:99:c9:08:79:ff:d3:b7:d9:5f:28:88:23:5e:d2:
0f:7d:ee:37:65:6b:ce:36:5c:a4:bd:33:dd:7f:7a:
e1:e3:51:41:5e:6f:af:74:cd:bb:47:20:42:4f:18:
aa:17:b6:1c:e4:3a:f0:a5:f9:2c:9b:9e:8a:79:ef:
77:ab:ca:84:9b:96:33:46:e8:3a:a9:ce:c2:8d:d9:
5c:90:45:94:1c:e3:a7:c1:f9:98:18:32:de:ac:11:
e7:85:e6:3f:9b:05:bf:68:f0:ef:92:6d:56:04:29:
73:47:68:05:ce:c1:c9:b1:58:2f:7e:77:09:90:f8:
1e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D2:E8:66:B1:EB:82:27:7A:B6:F5:62:FE:32:E0:83:59:B3:01:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7C0E/EE59E7F480F911EB985F433AC4F9AE02/n9LoZrHrgid6tvVi_jLgg1mzAWU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133365
141373
sbgp-ipAddrBlock: critical
IPv4:
103.151.40.0/23
Signature Algorithm: sha256WithRSAEncryption
64:81:83:69:7f:d9:3d:a0:44:95:c5:66:3e:76:f4:2f:2e:52:
60:1d:55:6f:ca:6f:04:69:33:e0:29:ff:86:32:2e:81:74:48:
52:26:e2:d5:c9:fc:8a:93:19:c8:45:c7:44:28:b9:6f:e8:9d:
a7:41:cf:53:64:55:25:84:33:ee:d4:d1:aa:c4:20:f6:7d:ba:
3d:4d:9e:6a:55:74:94:2d:77:5c:7a:28:5e:04:b3:69:93:a2:
99:a0:91:84:aa:1a:dc:d6:46:4d:0e:db:23:29:05:f6:09:dc:
53:f6:9a:b0:97:e0:60:2f:28:f3:be:c1:cb:55:29:9f:93:46:
93:f1:a4:6d:1e:47:06:31:f2:cd:de:96:32:85:fa:c0:12:db:
6f:f1:42:cd:f8:18:71:3e:92:3c:54:97:55:79:a3:7a:de:a3:
81:0d:b2:aa:08:78:0b:f3:86:71:27:69:cb:4f:b6:e4:4f:19:
f1:db:e5:fc:7a:82:2d:04:96:4c:8a:bf:c3:53:21:d6:57:b4:
ce:d7:37:07:03:de:6b:a5:5d:69:ab:d5:15:f0:5b:2a:4f:eb:
fa:71:30:fb:3d:bb:62:48:2e:d2:7d:b5:f4:ad:ba:48:ce:f1:
42:19:ea:00:84:64:14:3b:6a:e8:c9:d6:ca:6b:b5:92:75:77:
88:23:34:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:07 2024 by rpki-client on console.sobornost.net